Publish a DSR form¶

During Dxtra onboarding, your Data Subject Rights (DSR) form is automatically configured based on your jurisdictions and regulatory requirements. This guide walks you through reviewing, customizing, and publishing your form.

What your form does¶

Your DSR form enables users to submit formal requests for their personal data under regulations like GDPR, CCPA, and others. The form:

• Collects structured request information
• Verifies requester identity
• Routes requests to your team
• Tracks processing status
• Maintains audit trails

Review auto-configured settings¶

Your DSR form was generated during onboarding based on your jurisdictions:

1. Log in to your Dxtra dashboard
2. Navigate to Rights Management in the sidebar
3. Find your auto-configured form (shows as "Auto-generated")
4. Click to review the settings

Default request types enabled¶

Based on your jurisdictions, these request types are automatically enabled:

• Access requests — Users request copy of their personal data
• Deletion requests — Users request permanent data deletion
• Rectification requests — Users request correction of inaccurate data
• Portability requests — Users request data in portable format
• Objection requests — Users object to processing activities
• Consent withdrawal — Users withdraw previously given consent

Disable any request types your organization doesn't support.

Default identity verification¶

Your form uses email verification by default:

• Users submit their email address
• Dxtra sends a verification link
• User clicks link to confirm identity

For higher-security requests (deletions), consider adding secondary verification.

Customize form settings¶

Adjust your form to match your specific needs:

Enable additional verification¶

Add secondary verification for sensitive requests:

1. Go to Verification Settings
2. Select request type (e.g., Deletion requests)
3. Add secondary method:
4. Secret question
5. Two-factor authentication
6. Government ID upload

Customize form fields¶

Adjust which information you collect:

1. Go to Form Fields
2. Review core fields (name, email, request type always required)
3. Add optional fields if needed:
4. Phone number
5. Account ID
6. Additional information
7. Set required fields for each request type
8. Add help text to guide users

Customize appearance¶

Make your form match your brand:

1. Upload your company logo
2. Select primary and accent colors
3. Write form instructions (headline and explanation)
4. Select language and tone (formal, friendly, balanced)

Configure request handling¶

Set up how your team receives and processes requests:

Team notifications¶

1. Who to notify — Add email addresses of team members
2. Notification timing — Immediately or daily digest
3. Include details — Full request or summary only

Response SLA¶

1. Set response deadline — Typically 30-45 days per regulation
2. Enable reminders — Alert team before deadline
3. Assign responsibility — Route by request type or data category

Response delivery¶

Choose how users receive responses:

• Secure portal — Users log in to retrieve their data
• Email delivery — Responses sent securely by email
• Both options — Users choose their preferred method

Preview and test¶

Before publishing:

1. Click Preview to see the form as users will experience it
2. Test on desktop and mobile — Verify responsive design
3. Submit a test request — Confirm workflow works
4. Verify notification emails — Check your team receives alerts
5. Check dashboard — Confirm request appears in queue

Publish to Transparency Center¶

Make your form publicly available:

1. Click Publish
2. Confirm settings — Review form configuration
3. Select destination:
4. Transparency Center (recommended) — Include in your privacy hub
5. Embed code — Get code to embed on your website

Your form is now live and users can submit requests.

Manage incoming requests¶

Handle DSRR requests¶

1. Check dashboard daily for new requests
2. Verify each request with submitted identity proof
3. Collect required data from your systems
4. Prepare response in your format (PDF, CSV, JSON, etc.)
5. Send before deadline (one month for GDPR, 45 days for CCPA)
6. Document all steps for compliance audit

For detailed guidance, see Managing DSRR Requests.

Track and improve¶

• Monitor which request types are most common
• Identify patterns in user questions
• Refine form fields based on feedback
• Update help text for clarity

What to read next¶

• Publish a Privacy Notice → — Create privacy notice to link to your form
• Publish a Transparency Center → — Include form in unified privacy hub
• Managing DSRR Requests → — Handle incoming requests